CVE-2018-6495
Severity CVSS v4.0:
Pending analysis
Type:
CWE-79
Cross-Site Scripting (XSS)
Publication date:
23/05/2018
Last modified:
07/11/2023
Description
Cross-Site Scripting (XSS) in Micro Focus Universal CMDB, version 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, 10.33, 11.0, CMS, version 4.10, 4.11, 4.12, 4.13, 4.14, 4.15.1 and Micro Focus UCMDB Browser, version 4.10, 4.11, 4.12, 4.13, 4.14, 4.15.1. This vulnerability could be remotely exploited to allow Cross-Site Scripting (XSS).
Impact
Base Score 3.x
5.40
Severity 3.x
MEDIUM
Base Score 2.0
3.50
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:microfocus:universal_cmdb:0.20:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb:10.21:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb:10.22:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb:10.30:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb:10.31:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb:10.32:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb:10.33:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb:11.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb_browser:4.10:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb_browser:4.11:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb_browser:4.12:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb_browser:4.13:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb_browser:4.14:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:universal_cmdb_browser:4.15.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:cms_server:4.10:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page